This script is Copyright (C) 2010-2014 Tenable Network Security, Inc.
The remote device is missing a vendor-supplied security patch.
Multiple vulnerabilities exist in the Session Initiation Protocol
(SIP) implementation in Cisco IOS Software that could allow an
unauthenticated, remote attacker to cause a reload of an affected
device when SIP operation is enabled. Remote code execution may also
be possible. Cisco has released free software updates that address
these vulnerabilities. For devices that must run SIP there are no
however, mitigations are available to limit exposure of
See also :
Apply the relevant patch referenced in Cisco Security Advisory
Risk factor :
Critical / CVSS Base Score : 10.0
Nessus Plugin ID: 49054 (cisco-sa-20100324-siphttp.nasl)
CVE ID: CVE-2010-0579CVE-2010-0580CVE-2010-0581
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.